Description
The DeviceIoControl function in the TrueVector Device Driver (VSDATANT) in ZoneAlarm before 3.7.211, Pro before 4.0.146.029, and Plus before 4.0.146.029 allows local users to gain privileges via certain signals (aka "Device Driver Attack").
Affected products
- zonelabs / zonealarm3.7.202 – 3.7.202
- zonelabs / zonealarm3.7.211 – 3.7.211
- zonelabs / zonealarm3.7.211 – 3.7.211
References
- MISChttp://www.osvdb.org/4362
- MISChttp://www.securityfocus.com/bid/8342
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/12824
- MISChttp://download.zonelabs.com/bin/free/information/znalm/zaReleaseHistory.html
- MISChttp://sec-labs.hack.pl/papers/win32ddc.php
- VENDOR_ADVISORYhttp://sec-labs.hack.pl/advisories/seclabs-adv-zone-alarm-04-08-2003.txt
- MISChttp://www.osvdb.org/2375
- VENDOR_ADVISORYhttp://secunia.com/advisories/9459
- MISChttp://archives.neohapsis.com/archives/vulnwatch/2003-q3/0070.html